AMD CPU - severe side-channel attack vulnerability

Possible Intel smear campaign.

The article didn’t contain any CVE for the defect, so until there is a CVE it’s not official.

2 Likes

There is a white paper published online by Moritz and Gruss as well as a response by AMD (above links was from a ZDNet article.

I really cant read technical whitepaper without having a nosebleed and a stroke, so I will probably listen to more infosec focused podcasts for their analysis. AMD said it was previously patched along Spectre and Meltdown in the previous year/s.

The actual paper had weird things in it had some weird future convention in June 2020 at Taiwan (Proceedings of the 15thACM Asia Conference on Computer and Communications Security (ASIA CCS’20), June 1–5, 2020, Taipei, Taiwan.ACM, New York, NY, USA, 13 pages). and it had a non-exitisting DOI reference in the actual paper pointing to here https://doi.org/10.1145/3320269.3384746

So I guess the white paper was to be presented at the conference in taiwan this June? I dont know how DOIs work exactly either or why it currently points to an empty reference.

I don’t know how they work either.

However, I do know how infosec works, hence my comment about no CVE about the vulnerability.

I did, however, search NVD and was not able to find any AMD CPU related CVE:
https://nvd.nist.gov/